Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/37392e39392e32382e302f32322d3232203d3e20323039323432.roa
File: 37392e39392e32382e302f32322d3232203d3e20323039323432.roa (raw, json)
Hash identifier: Fyk0QrPavExp5uqIPjqpBUAPrC1s4WvPbRDu1VTOPbk=
Subject key identifier: FE:83:60:76:BA:86:10:F1:B4:7C:B7:32:1D:42:40:6C:AB:93:DD:C0
Certificate issuer: /CN=d7be9d3520750ef280e734f41346d051c8b2f524
Certificate serial: 3A8AFC004EDB79E4AB09E2E99CB992B642FA61E8
Authority key identifier: D7:BE:9D:35:20:75:0E:F2:80:E7:34:F4:13:46:D0:51:C8:B2:F5:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/176dNSB1DvKA5zT0E0bQUciy9SQ.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/37392e39392e32382e302f32322d3232203d3e20323039323432.roa
Signing time: Fri 08 Dec 2023 10:19:35 +0000
ROA not before: Fri 08 Dec 2023 10:14:35 +0000
ROA not after: Fri 06 Dec 2024 10:19:35 +0000
asID: 209242
IP address blocks: 79.99.28.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.crl
rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.mft
rsync://rpki.ripe.net/repository/DEFAULT/176dNSB1DvKA5zT0E0bQUciy9SQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:8a:fc:00:4e:db:79:e4:ab:09:e2:e9:9c:b9:92:b6:42:fa:61:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7be9d3520750ef280e734f41346d051c8b2f524
Validity
Not Before: Dec 8 10:14:35 2023 GMT
Not After : Dec 6 10:19:35 2024 GMT
Subject: CN=FE836076BA8610F1B47CB7321D42406CAB93DDC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:db:79:bf:fb:de:63:63:84:87:7f:40:6a:c5:
03:d6:5a:d7:9f:f5:70:8c:37:e6:f9:e4:70:fa:ac:
7c:c1:c6:b7:8f:cb:d4:a0:37:c9:07:d5:4f:6a:00:
25:ca:52:b8:a4:5c:da:b4:4b:2b:6e:26:17:2d:97:
b1:5f:c5:5c:6a:45:07:b4:56:2c:d3:36:fe:79:f0:
47:40:59:d8:6f:69:b0:cf:67:6a:b9:c9:e0:b6:15:
84:85:99:d8:b2:99:17:b4:2b:5b:62:ef:8f:81:49:
d7:c0:b2:10:bf:9a:44:10:3e:e2:b1:29:c9:a6:db:
58:4d:17:1e:74:5c:e7:79:8f:dd:23:cd:43:fa:3d:
19:69:3b:06:85:ec:82:29:de:37:7c:11:8f:15:97:
61:24:aa:9b:2c:3e:00:b7:c6:f1:b7:fc:30:1f:12:
1f:f2:81:ce:cb:75:d2:6e:9a:4d:2f:e4:c3:c6:94:
53:dd:d0:17:da:b7:1b:62:78:15:e5:ef:6b:ec:09:
18:e0:da:10:49:58:f8:8d:5c:fe:b6:51:33:7b:91:
d9:9f:f3:92:44:69:f0:81:07:e6:f4:3b:36:f3:5d:
d7:53:e6:3a:eb:9b:2b:82:7e:5f:50:84:03:0f:76:
1b:48:a2:cc:4b:46:b0:2d:25:e5:32:38:90:43:95:
b1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:83:60:76:BA:86:10:F1:B4:7C:B7:32:1D:42:40:6C:AB:93:DD:C0
X509v3 Authority Key Identifier:
keyid:D7:BE:9D:35:20:75:0E:F2:80:E7:34:F4:13:46:D0:51:C8:B2:F5:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/176dNSB1DvKA5zT0E0bQUciy9SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/37392e39392e32382e302f32322d3232203d3e20323039323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.28.0/22
Signature Algorithm: sha256WithRSAEncryption
22:cf:c1:68:5a:76:05:ea:2f:b0:93:ed:3c:34:92:3e:a9:ae:
17:60:4f:c9:44:f7:c8:2f:21:ff:c9:e7:aa:6b:5c:20:0c:e4:
fe:13:88:86:81:a0:11:66:b4:43:3a:7f:14:84:f6:4c:a5:8f:
c6:14:29:e3:00:4a:61:16:2f:e5:80:79:b3:2f:90:b4:a7:61:
f5:e1:10:de:de:a4:ca:15:56:80:5e:85:52:9d:ea:8a:5a:c0:
23:aa:10:62:df:dd:43:b4:5e:71:98:e4:36:b5:d5:18:c9:61:
06:e6:6a:1a:78:a2:04:c4:be:47:bf:0d:61:24:03:83:1f:ce:
f2:d2:69:41:67:a9:c1:da:20:ce:41:fd:56:bf:dc:f3:90:db:
71:3b:1c:97:17:90:7e:d0:7e:0d:50:ac:a1:12:5a:a3:f6:f0:
84:7b:ec:ae:67:e3:f0:c9:d3:b3:3a:ef:c5:ad:b9:be:ac:20:
1e:13:a3:43:f0:57:4b:da:f6:7a:6b:61:ea:d0:c3:c6:ac:b6:
ad:13:fa:d6:ec:94:3a:90:90:e2:b0:d5:02:7e:fb:99:1d:3a:
97:09:d6:5f:ea:b8:69:4a:74:df:76:11:96:46:57:59:08:65:
13:fc:b9:ed:dc:66:b4:5d:6f:b7:3d:8e:25:ca:4c:96:0f:60:
91:38:92:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 22:52:23 2024 by rpki-client on console-ams.rpki-client.org